[jboss-jira] [JBoss JIRA] (WFLY-8107) Coverity static analysis, Unwritten field, EntitySaslClient.clientCertUrl (Elytron)
Martin Choma (JIRA)
issues at jboss.org
Tue Feb 14 03:46:00 EST 2017
Martin Choma created WFLY-8107:
----------------------------------
Summary: Coverity static analysis, Unwritten field, EntitySaslClient.clientCertUrl (Elytron)
Key: WFLY-8107
URL: https://issues.jboss.org/browse/WFLY-8107
Project: WildFly
Issue Type: Bug
Components: Security
Reporter: Martin Choma
Assignee: Darran Lofthouse
Coverity found field {{EntitySaslClient.clientCertUrl}} is never filled. So probably initially intended behavior in {{X509Certificate getClientCertificate()}} method is not covered.
{code:java}
private X509Certificate getClientCertificate() throws SaslException {
if ((clientCertChain != null) && (clientCertChain.length > 0)) {
return clientCertChain[0];
} else if (clientCertUrl != null) {
try {
return EntityUtil.getCertificateFromUrl(clientCertUrl);
} catch (IOException e) {
throw log.mechUnableToObtainServerCertificate(getMechanismName(), clientCertUrl.toString(), e).toSaslException();
}
} else {
throw log.mechCallbackHandlerNotProvidedServerCertificate(getMechanismName()).toSaslException();
}
}
{code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list